思科再遭数据泄露,数家大厂跟着遭殃
名为IntelBroker的黑客声称已从网络巨头思科窃取了数据,并关联到一些知名公司的源代码。
Aggregator
U.S. Lawmakers, White House Move to Stem China Cyberthreat
3 months ago
Congressional lawmakers are pushing for information from three wireless carriers and pressing feder
CODASPY 2025 CFP
3 months ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
CVE-2021-23017 | Oracle Communications Control Plane Monitor 3.4/4.2/4.3/4.4 nginx off-by-one (EDB-50973)
3 months ago
A vulnerability has been found in Oracle Communications Control Plane Monitor 3.4/4.2/4.3/4.4 and classified as very critical. This vulnerability affects unknown code of the component nginx. The manipulation leads to off-by-one.
This vulnerability was named CVE-2021-23017. The attack can be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Cisco investigates breach after stolen data for sale on hacking forum
3 months ago
Cisco has confirmed to BleepingComputer that it is investigating recent claims that it suffered a breach after a threat actor began selling allegedly stolen data on a hacking forum. [...]
Lawrence Abrams
CVE-2024-6757 | Elementor Plugin up to 3.23.5 on WordPress get_image_alt information disclosure
3 months ago
A vulnerability was found in Elementor Plugin up to 3.23.5 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function get_image_alt. The manipulation leads to information disclosure.
This vulnerability is known as CVE-2024-6757. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-9687 | WP 2FA with Telegram Plugin up to 3.0 on WordPress improper authentication
3 months ago
A vulnerability, which was classified as critical, was found in WP 2FA with Telegram Plugin up to 3.0 on WordPress. Affected is an unknown function. The manipulation leads to improper authentication.
This vulnerability is traded as CVE-2024-9687. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-9952 | SourceCodester Online Eyewear Shop 1.0 Contact Information Page contact_info Address cross site scripting
3 months ago
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/?page=system_info/contact_info of the component Contact Information Page. The manipulation of the argument Address leads to cross site scripting.
The identification of this vulnerability is CVE-2024-9952. The attack may be initiated remotely. Furthermore, there is an exploit available.
Other parameters might be affected as well.
vuldb.com
邀请函 | 2024金融科技大会,梆梆安全邀您共话移动应用安全建设新态势
3 months ago
梆梆安全
TrickMo 安卓银行木马新变种利用虚假锁屏窃取密码
3 months ago
当用户输入解锁模式或 PIN 码时,页面会将捕获的 PIN 码或模式详情以及唯一的设备标识符传输到 PHP 脚本。
Play
3 months ago
cohenido
Play
3 months ago
cohenido
Play
3 months ago
cohenido
Play
3 months ago
cohenido
Play
3 months ago
cohenido
Play
3 months ago
cohenido
UL NO. 454: The First AI Breaches
3 months ago
SECURITY | AI | PURPOSEUNSUPERVISED LEARNING is a newsletter about upgrading to thrive in a world fu
盘点 | 中国互联网联合辟谣平台2024年9月辟谣榜
3 months ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
解读 | 扩供给促创新 激活公共数据资源潜能
3 months ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
关注 | 网信部门公开曝光第五批涉公共政策、突发案事件、社会民生领域网络谣言典型案例
3 months ago
扫码订阅《中国信息安全》邮发代号 2-786征订热线:010-82341063近期,一些网络账号以无中生有、移花接木、翻炒旧闻等方式,编造公共政策、社会民生、突发案事件等领域的谣言,严重误导网民认知